Following an external IT health check, a number of MySQL accounts on our NFA harvester and console servers were identified as having extremely weak passwords (passwords matching usernames, blank root passwords...)
After a few support cases via our support partner and some initial, encouraging feedback and assistance from CA, it was then made clear to us the changing of any MySQL passwords wasn't supported by CA. We've therefore reverted all passwords to their default values, which leaves us with some high vulnerabilities within our solution.
The default passwords are pretty appalling. Can the changing of all MySQL passwords please be a supported features in future releases of NFA?